CVE-2005-1472 — Apple MAC OS X vulnerability

2 documents2 sources

Severity

2.1LOWNVD

EPSS

0.0%

top 85.24%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X

Timeline

PublishedMay 19

Latest updateMay 1

Description

Certain system calls in Apple Mac OS X 10.4.1 do not properly enforce the permissions of certain directories without the POSIX read bit set, but with the execute bits set for group or other, which allows local users to list files in otherwise restricted directories.

CVSS vector

AV:L/AC:L/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

▶NVDapple/mac_os_x10.4.1

Patches

Patch: lists.apple.com ↗Patch: lists.apple.com ↗

🔴Vulnerability Details

GHSA

GHSA-f3q5-34rr-cvvj: Certain system calls in Apple Mac OS X 10↗2022-05-01

▶